System and method for managing bandwidth usage rates in a packet-switched network

ABSTRACT

A computer-implemented system is disclosed for managing bandwidth usage rates in a packet switched network. The system includes one or more servers configured to execute computer program steps. The computer program steps comprises monitoring bandwidth usage rate at a first provider interface, determining if bandwidth usage rate at the provider interface exceeds a bandwidth usage rate limit; and rerouting Internet traffic from the provider interface having bandwidth that exceeds the bandwidth usage rate limit to a second provider interface having available bandwidth capacity.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a divisional application of U.S. application Ser. No. 14/335,234, filed Jul. 18, 2014 which claims priority to U.S. Provisional Application No. 61/858,160, filed Jul. 25, 2013, which are all incorporated by reference herein.

FIELD OF THE INVENTION

The present invention relates to managing bandwidth usage rates, and more particularly to a system and method for managing bandwidth usage rates in a packet-switched network.

BACKGROUND OF THE INVENTION

Multi-homed networks are often connected to the Internet through several Internet Service Providers (ISPs). Multi-homed networks are advantageous if one of the connections to an ISP fails. Each ISP assigns an IP address (or range of them) to a company. As soon as a router assigned to connect to that ISP determines that the connection is lost, it will reroute all data through one of the other routers. In order to decrease operational costs and improve on network reliability and performance, however, multi-homed networks require bandwidth management and control. Bandwidth management and control typically involves managing bandwidth usage rates (also known as bandwidth rates) by considering bandwidth usage rate limitations (limits). These limitations include capacity limits, physical limits or contracted bandwidth limits (e.g., flat rate or 95th percentile).

In such multi-homed networks, bandwidth usage rates must be managed for each provider interface within a group of provider interfaces (two or more provider interfaces that form a group for bandwidth balancing). A provider interface is a hardware part of a router or network device designated for connection with an Internet Service Provider's router or other hardware as known to those skilled in the art. Bandwidth usage rates may require balancing across two or more provider interfaces within a provider interface group for improving network efficiency, reliability and costs. The typical answer or solution for managing bandwidth rates is to manually reroute some network prefixes carrying a specific amount of bandwidth to other provider interfaces. However, this task is too complex and time consuming when it must be performed on an ongoing or periodic basis.

It would thus be advantageous to provide a system and method that will overcome the problems described above.

SUMMARY OF THE INVENTION

A system and method is disclosed for managing bandwidth usage rates in a packet-switched network.

In accordance with an embodiment of the present disclosure, a computer-implemented system is disclosed for managing bandwidth usage rates in a network. The system includes one or more servers configured to execute computer program steps. The computer program steps comprise monitoring bandwidth usage rate at a first provider interface, determining if bandwidth usage rate at the provider interface exceeds a bandwidth usage rate limit, and rerouting Internet traffic from the provider interface having bandwidth that exceeds the bandwidth usage rate limit to a second provider interface having available bandwidth capacity.

In accordance with yet another embodiment of the present disclosure, a computer-implemented system is disclosed for managing bandwidth usage rates in a network. The system including one or more servers having memory, one or more processors and one or more computer program modules stored in the memory and configured to be executed by the one or more processors, the computer program modules comprising instructions for monitoring bandwidth usage rate at a provider interface, determining bandwidth overusages on the provider interface, whereby bandwidth overusage is determined when a bandwidth rate on the provider interface exceeds a bandwidth rate limit and a protection gap, determining a number of bandwidth overusages that exceed a number of allowable bandwidth overusages at the provider interface during an interval of time, and adjusting a protection gap for the provider interface based on the number of exceeding overusages to reduce the number of bandwidth overusages to a value less than the number of allowable bandwidth overusages.

In accordance with yet another embodiment of the present disclosure, a computer-implemented system is disclosed for managing bandwidth usage rates in a network. The system includes one or more servers configured to execute computer program steps. The computer program steps comprise collecting bandwidth usage data for a plurality of provider interfaces, retrieving bandwidth usage data from the network relating to the plurality of provider interfaces, requesting for probing network prefixes for the plurality of provider interfaces to determine network prefixes that can be rerouted, determining if bandwidth rate at the plurality of provider interfaces exceed bandwidth rate limits, retrieving network prefix evaluation results to determine network prefixes that can be rerouted, and applying new routes on network in accordance with network prefixes that can be rerouted.

In accordance with yet another embodiment of the present disclosure, a computer-implemented system is disclosed for managing bandwidth usage rates in a network. The system includes one or more servers configured to execute computer program steps. The computer program steps comprises forming a group of provider interfaces that may be controlled as an aggregated group of provider interfaces, calculating aggregated group total limit and aggregated group usage values, and determining if aggregated group usage values exceed group limits.

In accordance with another embodiment of the present disclosure, a computer-implemented method is disclosed for managing bandwidth rate in a packet switched network, wherein the method is implemented in one or more servers programmed to execute the method, the method comprising monitoring, by the one or more servers, bandwidth rate for a provider interface, comparing, by the one or more servers, the monitored bandwidth rate to a bandwidth rate limit, and determining if the bandwidth rate exceeds the bandwidth rate limit. In the embodiment, the method further comprises monitoring, by the one or more servers, an amount of data carried by a plurality of network prefixes, selecting, by the one or more servers, a plurality of network prefixes that carry an amount of bandwidth to be rerouted from a provider interface that exceeds the bandwidth rate limit, determining, by the one or more servers, a destination provider interface for rerouted bandwidth, and injecting, by the one or more servers, a network prefix into a router.

In accordance with yet another embodiment of the present disclosure, a system is disclosed for managing bandwidth usage rate for one or more provider interfaces in a network. The system includes one or more interconnected routers and one or more servers communicating with the one or more routers configured to execute one or more of the computer program modules stored in the one or more servers. The computer program modules comprise a first module (traffic collector) for analyzing network prefixes of a plurality of provider interfaces carrying an amount of bandwidth, a second module (network explorer) for determining network prefixes of the plurality of provider interfaces capable of receiving rerouted bandwidth, a third module (route injector) for communicating with the one or more routers for injecting routing changes based on the network prefixes capable of receiving rerouted bandwidth, a fourth module (stats collector) for periodic retrieval of the current provider interface bandwidth usage rates, and a fifth module (bandwidth controller) for determining if bandwidth usage rates exceed a bandwidth limit.

In yet another embodiment of the present disclosure, a method is disclosed for managing a controlled network including multiple connections to an Internet Service Provider or a plurality of Internet Service Providers. The method is implemented in one or more servers programmed to execute the method. The method comprises monitoring bandwidth usage rates at a plurality of provider interfaces, evaluating network prefixes carrying a specific amount of Internet traffic, comparing estimated bandwidth rate with the bandwidth rate limits specified in a central repository and dynamic bandwidth rate limits evaluated in order to reroute network prefixes carrying a specific amount of bandwidth to prevent violation of bandwidth rate limits and to prevent network performance degradation by the provider interface congestion.

In accordance with this embodiment of the disclosure, a method is disclosed for managing a controlled network, wherein the method is implemented in one or more servers programmed to execute the method. The method comprises detecting whether a provider interface exceeds a bandwidth rate limit, detecting network prefixes carrying a specific amount of bandwidth transmitted through the provider interface, selecting the statistics for each network prefix in the context of all providers interfaces, omitting provider interfaces with no statistics, omitting providers interfaces with worse performance metrics, omitting provider interfaces where current bandwidth usage rate exceeds the bandwidth rate limits, storing remaining provider interfaces in a sorted list, selecting the first provider interface from the sorted list, and storing the selection into the central repository.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 illustrates a diagram of an example system for bandwidth rate management in packet-switched network.

FIG. 2 illustrates the system shown in FIG. 1 wherein a network controller is shown in greater detail.

FIG. 3 illustrates an example bandwidth usage rate, current bandwidth usage rate, bandwidth rate limit, bandwidth rate over-usage and a protection gap of a provider interface.

FIG. 4 illustrates two graphs of an example algorithm evaluation of Interface bandwidth usage versus time for exemplary provider interfaces within a provider interfaces group, wherein bandwidth usage rate limits and protection gaps are calculated by the network controller of the system shown in FIG. 1.

FIG. 5A illustrates a high-level flowchart of example process steps of the bandwidth controller of the system in FIG. 1.

FIG. 5B illustrates a detailed flowchart of example process steps of the bandwidth controller of the system in FIG. 1.

FIG. 6 illustrates an exemplary figures in which Commit Priorities are shown for all provider interfaces that exceed bandwidth rate limits.

FIG. 7 illustrates an example implementation of the decision made by the present bandwidth controller in FIG. 2 in accordance with an embodiment of the present disclosure.

FIG. 8A illustrates a high-level flowchart of another example process steps of the bandwidth controller of the system in FIG. 1.

FIG. 8B illustrates a detailed flowchart of another example process steps of the bandwidth controller of the system in FIG. 1.

FIG. 9 illustrates a graph of percentage adjusted protection gap of bandwidth usage rate limit per measurement and overusage count.

FIG. 10 illustrates a flowchart of example process steps of the calculation of the adjustable protection gap.

FIG. 11 illustrates a flowchart of example process steps for controlling bandwidth for an aggregated group of provider interfaces.

FIG. 12 illustrates a graph depicting an example of (two) provider interface bandwidth rate usage limits and aggregated group limits.

FIG. 13 is a diagram that illustrates example system process steps for controlling bandwidth on controlled network in FIG. 1.

FIGS. 14 illustrates a graph depicting categories of traffic distinguished by the bandwidth controller of the system in FIG. 1 over a 5 minute-interval under normal circumstances.

FIG. 15 illustrates a graph depicting categories of traffic distinguished by the bandwidth controller of the system in FIG. 1 over a five-minute interval for the fast react algorithm.

FIG. 16 illustrates a block diagram of a general purpose computer to support the embodiments of the systems and methods including the computer program modules disclosed in this application.

DETAILED DESCRIPTION OF THE INVENTION

In the following detailed description, reference will be made to the accompanying drawing(s), in which identical functional elements are designated with numerals. The aforementioned accompanying drawings show by way of illustration and not by way of limitation, specific embodiments and implementations consistent with principles of the present invention. These implementations are described in sufficient detail to enable those skilled in the art to practice the invention and it is to be understood that other implementations may be utilized and that structural changes and/or substitutions of various elements may be made without departing from the scope and spirit of present invention. The following detailed description is, therefore, not to be construed in a limited sense. In addition, certain terms used herein are defined in this disclosure. Terms that are capitalized shall have the same meaning as those terms without capitalization (in this disclosure or the disclosure in the priority provisional application identified above).

FIG. 1 illustrates a diagram of an example system 10 for bandwidth rate management in a packet-switched network in accordance with an embodiment of this disclosure. In particular, system 10 includes network controller 100, two or more Internet Service Providers 103, one or more routers 104, provider interfaces 106, network device 107, controlled network 105 and destination network 101.

Controlled network 105 is connected to Internet Service Providers 103 via routers 104. Network controller 100 is connected to (communicates with) controlled network 105 and network device 107. Network device 107 is connected to routers 104. Routers 104 are also connected to Internet Service Providers 103 via provider interfaces 106. Internet Service Providers 103 are connected to (communicate with) destination network 101 via communication paths 102 (through the Internet).

Network controller 100 includes one or more servers or other computers that comprise a set of software modules for implementing system 10 in accordance with embodiments of this disclosure. Network controller 100 and these modules are discussed in more detail below.

Destination network 101 is the destination network in which Internet traffic is intended for delivery.

Internet Service Providers 103 are companies that offer Internet service (access) to its customers as known to those skilled in the art.

Routers 104 are components in the controlled network 105 that are used to route data through a network as known to those skilled in the art. Routers 104 provide dynamic routing protocol support and IP traffic statistics reporting (export). Cisco Systems, Inc., for example, manufactures and markets many routers that may be used.

Controlled network 105 comprises (1) the computer servers, routers and other components including routers 104 and network device 107 and (2) computer program modules and other software that make a network of a business or enterprise.

Provider interfaces 106 are a hardware part of routers 104 or alternatively network device 107. Provider interfaces 106 are used to provide connectivity to the routers and/or other hardware components of Internet Service Providers 103.

Network device 107 is a component within controlled network 105. Network device 107 includes one or more packet switches, routers or other network devices as known to those skilled in the art with the ability to duplicate traffic data. Network device 107 is used to copy all transit IP packets to traffic collector 108 as described below. (Routers 104 can function similarly to network device 107 and network device 107 can function similarly to routers 104).

Reference is now made to FIG. 2. FIG. 2 illustrates system 10 shown in FIG. 1 wherein network controller 100 is shown in greater detail. As indicated above, there are two alternate transmission paths 102 connecting controlled network 105 to destination network 101 via Internet Service Providers 103. In order for system 10 to operate as disclosed herein, controlled network 105 must incorporate two or more alternative transmission paths 102 to the destination network 101 to enable the proper rerouting of Internet traffic (data). In accordance with an embodiment of the present disclosure, system 10 will not be activated until a current bandwidth usage rate (information volume/time, e.g., Megabits per second) of the Internet Service Providers 103 exceeds the bandwidth rate limits (e.g., bandwidth rate limit, 95th bandwidth rate limit, or limits inside a provider interfaces group) set by the operator. That is, once the bandwidth rate at provider interface 106 is exceeded, system 10 is triggered and data is rerouted in accordance with an embodiment of the present disclosure as described in more detail below.

Reference is now made to network controller 100 in FIG. 2 in detail. As indicated above, network controller 100 is a system that includes one or more servers incorporating a plurality of computer program modules. These servers include, among other components, one or more processors for executing the plurality of computer program modules. An example of a server is shown in FIG. 16. These modules include traffic collector 108, network explorer 109, stats collector 110, route injector 111, bandwidth controller 112, frontend 114, central repository 113. The modules described above or portions thereof may be incorporated on servers and/or other components that are part of or entirely separate from controlled network 105 as known to those skilled in the art. Network controller 100 is connected to controlled network 105.

Traffic collector 108 is a module that analyzes network prefixes carrying a specific amount of bandwidth by using different network monitoring protocols for gathering IP traffic statistics.

Network explorer 109 is a module used for determining network prefix reachability and measuring and collecting each network prefix performance metrics such as packet loss, latency, jitter, and stores these metrics into the central repository 113. This is referred to as probing to distinguish from processes that determine reachability, measure and collect data for other purposes.

Stats collector 110 is a module used for monitoring and periodic retrieval of current Interface bandwidth usage rate of provider interfaces 106.

Route injector 111 is a module used for communicating with routers 104 for injecting routing changes using Border Gateway Protocol (BGP) or by other dynamic routing protocols as known to those skilled in the art.

Bandwidth controller 112 is a module used for performing analysis of data collected by traffic collector 108, network explorer 109 and stats collector 110 and making traffic routing decisions.

Frontend 114 is a module for interacting with operators to enable them to configure, monitor and report to an operator. That is, frontend 114 is a visual interaction interface between operator and network controller 100. Frontend 114 is described in more detail below. (The operator may be a person or automatic management, monitoring or reporting system as known to those skilled in the art.)

Central repository 113 is a module for storing module(s) configuration information and transferring or storing data exchanged between the modules. Central repository 113 may be a database or other storage medium. As indicated above, controlled network 105 includes network device 107. Network device 107 includes one or more packet switches, routers or other network devices with the ability to duplicate traffic data. That is, network device 107 is used to copy all or some transit IP packets to traffic collector 108. As indicated above, system 10 further includes a plurality of Internet Service Providers 103 and corresponding provider interfaces 106 for connecting and communicating with Internet Service Providers 103. The duplicated traffic is generated by network device 107 and collected by the traffic collector 108 (port mirroring). The IP traffic statistics are generated by routers 104 and collected by the traffic collector 108. Traffic collector 108 arranges and aggregates received data, and stores it into central repository 113. Examples of IP traffic statistics appear at the rear of this description.

As indicated above, stats collector 110 periodically retrieves provider interfaces 106 bandwidth statistics from routers 104 and network device 107 and stores this data in central repository 113. The network explorer 109 measures each network prefix performance metrics, such as packet loss, latency, jitter, and stores these metrics into the central repository 113. Bandwidth controller 112 retrieves the list of provider interfaces 106 exceeding bandwidth rate limits from central repository 113, bandwidth controller 112 also retrieves the list of network prefixes from central repository 113 that can be rerouted from a provider interface 106 that exceeds bandwidth rate limits to a destination provider interface 106 that has been selected for data rerouting in accordance with the present an embodiment of the present disclosure. Route injector 111 applies the selection made by bandwidth controller 112 to a single or multiple routers 104 (for Internet traffic egress).

System 10 collects provider interface 106 bandwidth statistics and stores the collected information in the central repository 113. The bandwidth statistics include the amount of data sent and received via the provider interfaces over a specific period of time. The value of this period of time is preferably 60 seconds, but those skilled in the art know that various time periods may be used for this purpose. Examples of bandwidth statistics appear at the rear of this description.

Traffic collector 108 collects IP traffic statistics, based upon network monitoring protocols known to those skilled in the art. An example of such protocols is IP Flow Information Export (IPFIX). IPFIX is described in “Specification of the IP Flow Information Export (IPFIX) Protocol for the Exchange of IP Traffic Flow Information,” B. Claise, IETF RFC 5101, January 2008. Another exemplary protocol is derived from sFlow in accordance with the protocol specifications promulgated by the sFlow.org consortium, netflow, or analyzing raw, duplicated traffic data. These standards/specifications and protocols may be found at the Internet Engineering Taskforce (IETF) Website at www.ietf.org.

The statistics (i.e., the total amount of bytes sent in IP packets to particular destination addresses) collected are aggregated into network prefixes carrying a specific amount of bandwidth based on the list of network prefixes retrieved from the central repository 113 per each provider interface 106 separately. Traffic collector 108 calculates the Correction Coefficient for each provider interface 106.

Correction Coefficient is the ratio of (1) provider interface current bandwidth usage rate retrieved by stats collector 110 to (2) the statistics collected by traffic collector 108 (i.e., Correction Coefficient=total bandwidth usage rate for all provider interfaces (in bytes) per X time period/total IP traffic statistics (in bytes) per X time period). Bandwidth data usage averages for a specific period of time for each of the analyzed network prefixes are multiplied by the Correction Coefficient, in order to correct the original data volume potentially distorted by router 104 restrictions or the network monitoring protocol sampling rate. That is, the correction coefficient is required to restore traffic volume information on a per-network prefix basis due to certain router's 104 restrictions or due to the sampling rate (selective traffic information collection in network devices.) The statistics are stored in the central repository 113 every specific period of time.

Traffic collector 108 updates bandwidth data usage averages for a specific period of time for each network prefix, per provider interface, and stores the statistics in the central repository 113 for subsequent use by bandwidth controller 112.

As indicated above, frontend 114 is an interaction interface between operator and network controller 100. Frontend 114 is used for configuration, reporting and management purposes. Frontend 114 includes a GUI (Graphical User Interface), CLI (Command Line Interface), Statistical Reports an API (Application Programming Interface) and/or other interfaces known to those skilled in the art. As indicated above, operator can be human beings, automated systems, monitoring systems or other systems known to those skilled in the art. Operator can manage or configure the network controller 100 using the frontend 114, which enables adding, editing, deleting data (or other actions) used and exchanged between the modules and the configuration parameter values. This resulting configuration information is then stored in the central repository 113 of network controller 100 in accordance with an embodiment of the present disclosure.

A network prefix is a part of the IP (Internet Protocol) address space in accordance with either IP version 4 or IP version 6 as known to those skilled in the art. Specifically, network prefix is a network part of an IP address and network size. Data packets contain a destination addresses. These destination addresses are aggregated (transformed) into network prefixes. Addresses can be aggregated into a fixed size (IPv4 or IPv6). Subnetting is performed against the target IP addresses to compose the network prefix. The corresponding description for subnets and prefixes is defined in V. Fuller, T. Li, “Classless Inter-domain Routing (CIDR)”, IETF RFC 4632.

Network controller 100 in accordance with an embodiment of the present disclosure is useful when at least one provider interface 106 exceeds the bandwidth usage rate limits and there exists one or more available alternative provider interfaces 106 selected as Destination provider interface by the network controller 100.

FIG. 3 illustrates a bandwidth usage rate, current bandwidth usage rate, bandwidth rate limit, bandwidth rate over-usage (also referred to as overusage) and a protection gap of a provider interface. The provider interface current bandwidth usage rate and the bandwidth rate limits are set by the operator and stored in the central repository or are automatically evaluated by network controller 100 in accordance with an embodiment of the present disclosure. The exceeding bandwidth rate (traffic) is subject to be rerouted to other provider interfaces. The method (algorithm) of network controller 100 in accordance with an embodiment of this disclosure can reroute more bandwidth rate (traffic) than the exceeded provider interface in order to keep a protection gap as seen in FIG. 3.

The protection gap is an additional bandwidth rate limit that is used to provide a buffer for the bandwidth rate growth up to the bandwidth rate limit without additional intervention by network controller 100, as provider interfaces exceeding bandwidth rate limits tend to further increase their bandwidth usage rate. Typically, the protection gap for provider interface bandwidth rate limits constitutes a subtraction from the provider interface bandwidth rate limits or addition of 5% to the bandwidth limit for a load balanced group of provider interfaces. These limits are configurable by an operator or adjustable protection gaps as known to those skilled in the art. Adjustable protection gaps are discussed below.

The bandwidth rate over-usage is calculated by network controller 100 (bandwidth controller 112) comparing provider interface current bandwidth rate with the limits stored in the central repository 113 or can be automatically calculated by network controller 100 (bandwidth controller 112) in accordance with an embodiment of the present disclosure, using 95th percentile calculation, algorithms for distributing bandwidth rate limit in a provider interfaces load balanced group or other calculations known to those skilled in the art.

The 95th percentile calculation is done by using well-known algorithms, such as retrieving all bandwidth usage statistics, sorting ascending, ignoring the top 5% of the values. Network controller 100 (modules/algorithms) in accordance with an embodiment of the present disclosure is not limited to a specific amount of percentiles, as other values can be also used.

FIG. 4 illustrates two graphs of algorithm evaluation (method) of Interface bandwidth usage versus time for exemplary provider interfaces within group of load balanced provider interfaces, wherein bandwidth usage rate limits and protection gaps are calculated by network controller 100 of system shown in FIG. 1. In short, FIG. 4 illustrates the algorithm evaluation (method) of proportional bandwidth rate distribution in a load balanced group of provider interfaces. In order to evaluate the Proportion of bandwidth usage rate for load balanced group of provider interfaces, the algorithm sums the current bandwidth usage rate for each provider interface in the load balanced group of provider interfaces, and divides the result by the sum of each provider interface bandwidth rate limits. In order to evaluate the bandwidth rate limit for a particular provider interface in the load balanced group of provider interfaces, the evaluated Proportion is multiplied by the provider interface bandwidth rate limit.

The formulas in FIG. 4 are used in the following example. Assume provider interfaces current bandwidth rate are obtained and the limits are retrieved from central repository 113 (or calculated as 95th percentile). In this example, two Internet Service Providers (ISP1, ISP2) are part of a load balanced group of provider interfaces. ISP1 has current usage of 250 Mbps and ISP2 has 150 Mbps. ISP1 has a limit of 400 Mbps and ISP has a limit of 600 Mbps. The current bandwidth of ISP1+current bandwidth of ISP2=400 Mbps. The limit of ISP1 and ISP 2 equals 1000 Mbps. 400/1000=0.4 or 40%. So, with the network controller 100 in accordance with an embodiment of the present disclosure, there is 40% of bandwidth usage estimated on each of the provider interfaces within the load balanced group. ISP1 should have 160 Mbps but has 250 Mbps, so 90 Mbps are exceeding the bandwidth rate and are subject to rerouting to any other provider interface. ISP2 can have 240 Mbps but current usage is 150 Mbps. There is thus 90 Mbps of bandwidth rate under-usage. The network controller 100 takes into account bandwidth rate for underused provider interface+volume from the bandwidth correction table in order to estimate bandwidth usage and to prevent possible over-usage on the destination provider interface. This is just one example of the use of the formulas in FIG. 4 and the network controller to manage and control bandwidth usage rates on provider interfaces.

FIG. 5A illustrates a high-level flowchart of an example process steps of the bandwidth controller of the system in FIG. 1. Execution begins with step 400 of the method wherein the bandwidth usage rates at provider interfaces are monitored. At step 410, the bandwidth rates at the provider interfaces are compared with the bandwidth rates limits stored in central repository 113. Bandwidth controller 112 then determines if the bandwidth usage rate at the provider interfaces 106 exceeds the bandwidth usage rate limits at step 420. If so, bandwidth controller 112 then directs re-routing of traffic from the exceeded provider interface 106 to the alternative provider interface with available bandwidth capacity at step 430. Those skilled in the art know that additional steps may be employed or less in accordance with an embodiment of the present disclosure.

FIG. 5B illustrates a detailed flowchart of an example process steps (algorithm) of the bandwidth controller of the system in FIG. 1. Bandwidth controller 112 retrieves the list of the provider interfaces 106 from central repository 113 at execution step 501. For each provider interface, at decision step 502, the bandwidth controller 112 (algorithm) checks if the current bandwidth rate limit is greater than bandwidth rate limit set by the operator and stored in the central repository 113 or 95th bandwidth rate limit, or greater than bandwidth rate limit inside a provider interface group. Once the bandwidth over-usage is confirmed, the bandwidth controller 112 (algorithm) retrieves from central repository 113 the list of network prefixes carrying a specific amount of bandwidth (traffic) through this particular provider interface at step 503, and data is collected and aggregated by the traffic collector 108. Bandwidth controller 112 (algorithm) processes each retrieved network prefix at step 504.

Execution moves to decision step 505, wherein bandwidth controller 112 (algorithm) stops analyzing the list of network prefixes from the overloaded provider interface until bandwidth usage rate is brought below the protection gap. Step 505 is required to reroute only exceeding bandwidth (instead of all bandwidth).

Execution moves to step 506 wherein bandwidth controller 112 (algorithm) (1) retrieves from the central repository 113 a set of data for each provider interface, comprising, but not limited to, bandwidth statistics for the latest period analyzed by the traffic collector 108, bandwidth data averages for a specific period of time for each of the analyzed network prefixes, the latest performance metrics data for each of the analyzed network prefixes, and (2) designates (stores) commit priorities into a list of candidate provider interfaces at step 507. “Candidate provider interfaces” is a list of possible candidate provider interfaces to which the traffic may potentially be routed. A target provider interface is chosen from this list for rerouting traffic.

Bandwidth controller 112 (algorithm) can use performance metrics such as but not limited to packet loss, latency, jitter of the particular network prefix. In order for bandwidth controller 112 (algorithm) to take performance metrics into the consideration, these metrics have to be collected by a set of methods and algorithms interacting with the network (network explorer 109). Performance metrics can be used to prevent metric deterioration by comparing the metrics for the current route to the metrics for each of other routers in order to block routes with deteriorating (worse) metrics.

Commit priority is a metric set by the operator, stored in the central repository 113 and used in the bandwidth controller 112. In the case where all provider interfaces bandwidth usage rates have exceeded a configured limit, this metric is used to control rerouting so that exceeded bandwidth will be routed to “commit priority” provider interfaces with smaller metric values (up to physical or contractual limits) rather than to those provider interfaces that have exceeded bandwidth and have higher metric values.

Execution moves to step 508, wherein bandwidth controller 112 (algorithm) evaluates the list of candidate provider interfaces. Bandwidth controller 112 will (1) remove the candidate provider interfaces at step 509 if the network prefix is not accessible through the particular candidate provider interfaces at decision step 510, (2) remove the candidate provider interfaces at decision step 509 in case the performance metrics are worse at decision step 511, (3) remove the candidate provider interfaces 509 where current bandwidth usage rate exceeds the bandwidth rate limits at decision step 512. This is done to prevent further over-usage or prevent network performance degradation by the provider interface congestion.

Execution moves to decision step 513 wherein if any of the provider interfaces 513 are not exceeding the bandwidth rate limits, the bandwidth controller 112 (algorithm) sorts the list of the candidate provider interfaces by performance metrics and by the proportion of the current bandwidth usage rate at step 514. However, if all provider interfaces at decision step 513 are exceeding the bandwidth rate limits, the bandwidth controller 112 (algorithm) sorts the list of the candidate provider interfaces by commit priority and by the proportion of the current bandwidth usage rate at step 515.

Execution moves to step 516, wherein bandwidth controller 112 (algorithm) retrieves the first candidate provider interface from the sorted list established in step 507 as a destination provider interface, forming an improvement and stores it in the central repository at step 517 for future injection, i.e., further implementation of the decision. The improvement is a set of data stored in the central repository 113, comprising, without limitation, the network prefix, provider interface exceeding bandwidth rate, destination provider interface, and related performance metrics.

The bandwidth correction table is defined and stored in the central repository 113 to represent bandwidth usage rate changes for provider interfaces based on network prefixes carrying a specific amount of bandwidth, rerouted from the original provider interface 106 to the destination provider interface. The bandwidth correction table stores these results in order to estimate bandwidth usage rate for provider interfaces taking into account all re-reroutes made between bandwidth measurements. An example of this appears at the rear of this application.

Bandwidth controller 112 (algorithm) modifies bandwidth correction table stored in the central repository 113 by subtracting the bandwidth data averages of the analyzed network prefix from the current bandwidth usage rate of provider interfaces 106 exceeding bandwidth rate limits and adding bandwidth data averages for analyzed network prefix to the current bandwidth usage of destination provider interface stats values.

The bandwidth correction table is reset each time the stats collector 110 retrieves provider interfaces 106 bandwidth statistics from the routers 104 and stores them into the central repository 113.

As indicated above, FIG. 5B illustrates the detailed process steps of bandwidth controller 112. Those skilled in the art know that the listed steps may be formulated in different order, additional steps may be included, or one or more steps may be removed to the same desired outcome.

FIG. 6 illustrates the Commit Priorities usage to reroute bandwidth over-usage from the provider interface with higher commit priority, to the provider interfaces with lower Commit Priorities, until the provider interface congestion limits are met. As shown, bandwidth overusage part1 filled up provider interface with commit priority 1 up to its congestion limit. Therefore, bandwidth overusage partN has been rerouted to provider interface with commit priority 5.

FIG. 7 illustrates the implementation of the decision made by the present bandwidth controller 112 in FIG. 2 in accordance with an embodiment of the present disclosure. Bandwidth controller 112 stores information in the central repository 113 to be used by frontend 114 and for Improvement injection by the route injector 111 to router 104 by using (but not limited to) Border Gateway Protocol 4 (BGP-4) as defined in the Y. Rekhter, T. Li, S. Hares, “A Border Gateway Protocol 4 (BGP-4)”, IETF RFC 4271; Open the Shortest Path First (OSPF) as defined in the J. Moy, “OSPF Version 2”; IETF RFC 2328; D. Savage, D. Slice, J. Ng, S. Moore, R. White, “Enhanced Interior Gateway Routing Protocol”, IETF draft-savage-eigrp-00; Command Line interface via secure shell or telnet protocol; or Serial Port or any other protocol, port or method for configuring router 104, by executing router-specific configuration commands. Further, the Improvement is propagated between routers 104 by the dynamic routing protocols 120 (link) established between routers 104 used in order to apply the implementation to the controlled network 105.

The network controller 100 in accordance with an embodiment of the present disclosure executes steps of the methods in which the original network prefix is split in two or more network prefixes, in order to interact with router 104 by the dynamic routing protocol (such as but not limited to the BGP-4, EIGRP, OSPF) and to preserve attributes and metrics for the injected network prefix, from the original network prefix.

FIG. 8A illustrates a high-level flowchart of another example of the process steps of bandwidth controller 112 of the system in FIG. 1. Execution begins with step 800 of the method wherein the bandwidth usage rates at provider interfaces are monitored. At step 802, the bandwidth rates at provider interfaces are compared with the protection gap of bandwidth rates limits stored in central repository 113. This protection gap is adjustable. The bandwidth controller 112 uses the adjustable protection gap so that small bandwidth rate usage increases on the provider interfaces do not result in its bandwidth rate limit being exceeded. The bandwidth controller 112 then determines if the bandwidth usage rate at the provider interfaces 106 exceeds the protection gap of bandwidth usage rate limits at step 804. Next at step 806, bandwidth controller 112 identifies network prefixes that can be rerouted from provider interfaces that exceed protection gap of bandwidth usage rate limits to provider interfaces with available bandwidth capacity. Execution then moves to step 808 wherein the Bandwidth controller 112 then directs re-routing of traffic from the exceeded provider interface 106 to the alternative provider interface with available bandwidth capacity. Those skilled in the art know that additional steps may be employed or less in accordance with other embodiments.

FIG. 8B illustrates a detailed flowchart of example process steps (algorithm) of the bandwidth controller 112 of the system in FIG. 1. The flowchart in FIG. 8B is similar to the flowchart in FIG. 5B except that the flowchart reflects the incorporation of an adjustable protection gap as described below.

Execution begins at step 810 wherein bandwidth controller 112 retrieves the list of the provider interfaces 106 from central repository 113. For each provider interface, at decision step 812 the bandwidth controller 112 (algorithm) checks if the current bandwidth rate is greater than the adjustable protection gap calculated by bandwidth controller 112 based on configuration parameters set by the operator and stored in the central repository 113. Once the bandwidth over-usage is confirmed, the bandwidth controller 112 (algorithm) retrieves from central repository 113 the list of network prefixes carrying a specific amount of bandwidth through this particular provider interface at step 814. Bandwidth controller 112 evaluates only those network prefixes that have their performance characteristics for all provider interfaces determined in advance by the network explorer 109 and stored in central repository 113. Bandwidth controller 112 (algorithm) processes each retrieved network prefix at step 816.

Execution moves to decision step 818, wherein bandwidth controller 112 (algorithm) stops analyzing the list of network prefixes from the overloaded provider interface until bandwidth usage rate is brought below the protection gap. Step 818 is required to reroute only exceeding bandwidth (instead of all bandwidth).

Execution moves to step 820 wherein bandwidth controller 112 (algorithm) (1) retrieves from the central repository 113 a set of data for each provider interface, comprising, but not limited to, bandwidth statistics for the latest period analyzed by the traffic collector 108, bandwidth data averages for a specific period of time for each of the analyzed network prefixes, the latest performance metrics data for each of the analyzed network prefixes, and (2) designates (stores) Commit Priorities into a list of candidate provider interfaces at step 822. Candidate provider interfaces is a list of possible candidate provider interfaces to which the traffic may potentially be routed. A target Provider is chosen from this list for rerouting traffic.

Bandwidth controller 112 (algorithm) can use performance metrics such as but not limited to packet loss, latency, jitter of the particular network prefix. In order for bandwidth controller 112 (algorithm) to take performance metrics into the consideration, these metrics have to be collected by a set of methods and algorithms interacting with the network (network explorer 109). Performance metrics can be used to prevent metric deterioration by comparing the metrics for the current route to the metrics for each of other routers in order to block routes with deteriorating (worse) metrics.

Commit priority is a metric set by the operator, stored in the central repository 113 and used in the bandwidth controller 112. In the case where all provider interfaces bandwidth usage rates have exceeded a configured limit, this metric is used to control rerouting so that exceeded bandwidth will be routed to “commit priority” provider interfaces with smaller metric values (up to physical or contractual limits) rather than to those provider interfaces that have exceeded bandwidth and have higher metric values.

Execution moves to step 824, wherein bandwidth controller 112 (algorithm) evaluates the list of candidate provider interfaces. bandwidth controller 112 will (1) remove the candidate provider interfaces 106 at step 826 if the network prefix is not accessible through the particular candidate provider interfaces at decision step 828, (2) remove the candidate provider interfaces at decision step 826 in the event the performance metrics are worse than the performance metrics on the overloaded provider interface at decision step 830, (3) remove the candidate provider interfaces 826 where current bandwidth usage rate exceeds the bandwidth rate limits at decision step 832. This is done to prevent further over-usage or prevent network performance degradation by the provider interface congestion.

Execution moves to decision step 832 wherein if any of the provider interfaces are not exceeding the bandwidth rate limits, the bandwidth controller 112 (algorithm) sorts the list of the candidate provider interfaces by performance metrics and by the Proportion of the current bandwidth usage rate at step 834. However, if all provider interfaces at decision step 832 are exceeding the bandwidth rate limits, the bandwidth controller 112 (algorithm) sorts the list of the candidate provider interfaces by commit priority and by the Proportion of the current bandwidth usage rate at step 836.

Execution moves to step 838, wherein bandwidth controller 112 (algorithm) retrieves the first candidate provider interface from the sorted list established in step 822 as a destination provider interface, forming an Improvement and stores it in the central repository at step 840 for future injection, i.e., further implementation of the decision. The Improvement is a set of data stored in the central repository 113, comprising, without limitation, the network prefix, provider interface exceeding bandwidth rate, destination provider interface, related performance metrics.

As stated above with respect to FIG. 5B, the bandwidth correction table is defined and stored in the central repository 113 to represent bandwidth usage rate changes for provider interfaces based on network prefixes carrying a specific amount of bandwidth, rerouted from the original provider interface 106 to the destination provider interface. The bandwidth correction table stores these results in order to estimate bandwidth usage rate for provider interfaces taking into account all re-reroutes made between bandwidth measurements. An example of this appears at the rear of this application. Bandwidth controller 112 (algorithm) modifies bandwidth correction table stored in the central repository 113 by subtracting the bandwidth data averages of the analyzed network prefix from the current bandwidth usage rate of provider interfaces 106 exceeding bandwidth rate limits and adding bandwidth data averages for analyzed network prefix to the current bandwidth usage of Destination provider interface stats values.

The bandwidth correction table is reset each time the stats collector 110 retrieves provider interfaces 106 bandwidth statistics from the routers 104 and stores them into the central repository 113.

As indicated above, FIG. 8B illustrates the detailed process steps of bandwidth controller 112. Those skilled in the art know that the listed steps may be formulated in different order, additional steps may be included, or one or more steps may be removed to the same desired outcome.

The algorithm used to calculate the adjustable protection gap will now be described. As indicated above, bandwidth controller 112 uses a protection gap so that small increases on bandwidth rate usage on a provider interface do not exceed its bandwidth rate limit. The protection gap should be chosen to optimally use the capacity of the provider interface but ensure that the bandwidth usage rate limit violations are kept to a minimum. That is, if the protection gap is too small, small increases in bandwidth rate usage will cause bandwidth rate over-usages. If the protection gap is large then bandwidth rate usage increases will not result in bandwidth rate over-usages. However, a provider interface will not be used to its capacity if a large protection gap is employed.

In accordance with an embodiment of this disclosure, the bandwidth controller 112 automatically adjusts the protection gap based on the number of past or previous bandwidth over-usages (overloads) during a particular billing period. That is, the quantity of previous bandwidth over-usages will dictate whether the protection gap will be increased or decreased in value. Burstable-billing typically, as known to those skilled in the art, specifies how many of the top highest bandwidth rate over-usages will be excused and as such will not incur any penalties. A customer is billed by the bandwidth rate usage at a contracted centile. If this value still exceeds bandwidth rate limit then the customer incurs penalties according to the excess over-usage.

Given the configured start day of a billing period, the sampling interval and the centile that the customer is billed, bandwidth controller 112 calculates and spreads evenly the number of allowed bandwidth rate over-usages for the entire billing period. For a given moment in time, bandwidth controller 112 determines the number of allowed bandwidth rate over-usages and compares it to the number of previously recorded bandwidth rate over-usages. Depending on the comparison, bandwidth controller 112 will increase or decrease the protection gap as described in the example below.

Typical burstable billing agreements use 95th centile and 5 minute sampling (measuring) intervals. These values also mean that 1 in 20 measurements (or 5 in 100) are allowed to exceed a bandwidth rate limit for a provider interface. In another instance, an 80th centile is used that allows 1 in every 5 measurements to exceed bandwidth rate over-usage (non-penalized). FIG. 9 is a graph that depicts this example. Specifically, FIG. 9 illustrates a graph depicting an example of the percentage of bandwidth usage rate limit versus measurement count. The flow of measurements is shown and individual measurements and (non penalized) allowed overusages.

FIG. 10 illustrates a flowchart of example process steps of the calculation of the adjustable protection gap. In particular, execution begins with step 1000 wherein bandwidth controller 112 calculates the measurement count and the number of (non-penalized) allowed bandwidth overusages at a specific moment in time using the following formula:

Allowed Overusages=Floor(Measurement Count*(100−Centile)/100)

whereby the variables are defined as follows:

“Measurement Count”=Floor (Now-Start)/Interval.

-   -   “Measurement Count” is the number of measurement count during a         billing period up to the specific moment in time.     -   “Centile” is the configure centile value. Typically it is 95%.         FIG. 9 employs 80%.     -   “Floor” is the rounding down function.     -   “Now” is the specific moment in time in minutes.     -   “Start” is the time in minutes of the beginning of the billing         period.     -   “Interval” is the length in minutes of the sampling interval         (typically 5 minutes.)

FIG. 9 presents the number of measurements on the horizontal axis and highlights allowed over-usages. For example, if for a specific moment in time Measurement Count is 14, then only 2 overusages are permitted as depicted by triangles at measurement 5 and 10 on the horizontal axis.

Now, execution moves to step 1002 wherein bandwidth controller 112 retrieves bandwidth usage values from the central repository 113 at the start and desired end points of a billing period, and then determines (counts) the number of bandwidth rate overusages recorded. The traffic collector 108 and stats (statistics) collector 110 continue to generate and store these bandwidth rate overusage values in the central repository 113. The central repository 113 ensures that all of its recordings are stored during a current billing period.

Bandwidth controller counts the number of bandwidth rate overusage for current billing period as follows:

-   -   For each (Measurement between (Start, Now), if (Bandwidth         Usage>Bandwidth Rate Limit), then increment Overusage Count;         where the following variables are defined:     -   “Measurement” represents individual records stored in the         central repository 113 that include bandwidth rate usage values.     -   “Start” is the beginning of the billing Interval.     -   “Now” is the specific moment in time for which bandwidth         controller 112 makes the calculation.     -   “Bandwidth Usage” is the actual bandwidth usage recording when a         measurement is taken.     -   “Bandwidth Rate Limit” is the configured bandwidth rate limit         for the specific provider interface.     -   “Overusage Count” is the number of bandwidth rate over-usage         recorded during this billing period.

FIG. 9 also highlights bandwidth rate over-usage measurements with an “x” on the bandwidth rate usage line. For the example, when there have been 14 measurements, then the number of over-usages up to measurement 14 is 4.

Execution then proceeds to step 1004, wherein bandwidth controller 112 determines the number of previous over-usages (Overusage Count below) that exceed the number of allowed overusages (Allowed Overusages below). If the number of previous overusages (Overusage Count) is smaller than the allowed overusages (Allowed Overusages), then the protection gap will have the nominal value. The formula below reflects this relationship:

Excess Overusage Count=max(0, Overusage Count−Allowed Overusages) whereby “max” is a function that returns the maximal value from a given set of values.

For example, FIG. 9 illustrates that the Measurement Count=14 while the Excess Overusage Count=(4−2), i.e., 2.

Execution then proceeds to step 1006, wherein bandwidth controller 112 calculates the protection gap. The protection gap is calculated based on (1) upper and lower protection gap limits and on the number of adjusting steps given by the maximum number of excess overusages that it considers acceptable. These are calculated by the following formula:

ProtectionGap=LIMIT_UP−(LIMIT_UP−LIMIT_LOW)*min(1, Excess Overusage Count/MAX_ALLOWED_EXCESS).

whereby the following variables are defined:

-   -   “LIMIT_UP” is the upper level in percentage when bandwidth         controller 112 starts rerouting traffic. Typically this value is         configured to be 99%. However, a user may select other values         for LIMIT_UP as desired.     -   “LIMIT LOW” is the lower level in percent when bandwidth         controller 112 starts rerouting traffic. This is configurable         and will typically be a value around 75-80%. However, those         skilled in the art know that other values may be selected for         LIMIT_LOW.     -   “min” is a function that returns the minimal value from a given         set.     -   “Excess Overusage Count” is the value calculated above.     -   “MAX_ALLOWED_EXCESS” is the adjustable value that helps         determine the protection gap. This value enables the excess         overusage count to be transformed into percent for the bandwidth         limits and protection gap value. If MAX_ALLOWED_EXCESS value is         5, then 5 excessive past overusages will bring the protection         gap to its lower limit. If this value is set to 50 then the 5         past overusages mentioned above set the protection gap at only         10 percent of the interval between LIMIT_UP and LIMIT_LOW. The         system sets this value at the number of overloads allowed per         day but those skilled in the art know that other values can be         employed.

For example, FIG. 9 illustrates that the protection gap percentage between measurement 10 and 15 is two steps down from protection gap's upper limit.

Bandwidth controller 112 calculates the protection gap value as percentage of bandwidth rate limit. Subsequently, bandwidth controller 112 uses the value to calculate a value in Mbps using the formula: ProtectionGapMbps=Bandwidth Rate Limit*Protection Gap/100%. Once the protection gap is calculated, bandwidth controller 112 uses this value to determine when it shall start rerouting traffic from a specific provider interface and make the decisions based on the configured bandwidth.

The entire algorithm is made as part of decision diamond 812 in FIG. 8B and the calculated value is reused in subsequent steps of FIG. 8B.

The discussion now relates to controlling bandwidth usage on an aggregated group of provider interfaces and reference is made to FIGS. 11 and 12.

Customers have the option to deploy network configurations with a several provider interfaces that interconnect with a single ISP. Additional provider interfaces can be advantageous in several circumstances. For example, the additional provider interfaces may provide sufficient capacity in the event that a single provider interface cannot fulfill very large capacity requirements or provide redundancy in the event that one provider interface becomes non-operational. In this case, the network can revert to the remaining provider interfaces and continue operating. In accordance with an embodiment of this disclosure, the provider interfaces may be configured to form a group or an aggregated group. The combined behavior of the aggregated group may be controlled (by controlling the characteristics of provider interfaces). Some of these behaviors include load balancing, optimization and bandwidth usage on the aggregated group. Bandwidth usage of the aggregated group is controlled as described below.

Bandwidth controller 112 recognizes the number of provider interfaces that are controlled as an aggregated group. These provider interfaces are configured as a group and their characteristics of the provider interfaces are summed (e.g., provider interface 1, provider interface 2, provider interface N). Two characteristics are used for the aggregated group—bandwidth limit and current bandwidth usage rate. These are calculated as follows:

Aggregated Group Total Limit=Bandwidth Limit PI_1+Bandwidth Limit PI_2 . . . +Bandwidth Limit PI_N. (“PI” is the provider interface).

-   -   Aggregated Group Total Usage=Current Bandwidth Usage PI_1+ . . .         +Current Bandwidth Usage PI_N.

The aggregated group characteristics are used to control bandwidth usage, for example, to calculate the protection gap or to decide if a bandwidth rate overusage event has occurred. The characteristics of the aggregated group are used to make a decision in diamond 812 in FIG. 8B. The detailed workflow of this operation is depicted in FIG. 11 wherein a flowchart is illustrated of example process steps of controlling bandwidth for aggregated group provider interfaces 106.

In a particular, execution begins at step 1100 wherein provider interfaces are retrieved from configuration established by an operator (user).

Execution proceeds to step 1102 wherein provider interfaces 106 are identified and formed as an aggregated group for subsequent bandwidth control.

Execution then proceeds to step 1104 wherein the aggregated group total bandwidth limit and aggregated usage values are calculated.

Execution then proceeds to step 1106 wherein aggregated group usage values are compared to group limits and it is determined if such values exceed such limits. Execution then ultimately proceeds to step 812 in FIG. 8B. The remaining steps are the same as in FIG. 8B. Therefore, these steps will not be repeated here.

FIG. 12 illustrates a graph depicting an example of characteristics of two provider interfaces whereby (1) provider interface 1 and provider interface N limits that are used to calculate the overall Aggregated Group Total Limit, (2) provider interface 1 and provider interface N bandwidth usage are used to calculate aggregated group total usage, (3) aggregated group total limit and aggregated group total usage are the resulting values of above two operations, (4) aggregated group overusages highlight the events when actual aggregated group total usage exceeded aggregated group total limit and (5) aggregated group protection gap is calculated based on the aggregated group total limit. Aggregated group usage exceeds the aggregated group protection gap and aggregated total limit (100 Mbps) four times (designated by an “x”). FIG. 12 highlights that multiple detected (i.e., registered) overusages on provider interface 1 (starting at measurements 4, 5 etc.) are compensated by underusages on provider interface N. Only when the bandwidth of overusages exceed the bandwidth of underusages bandwidth controller 112 will attempt to re-route some traffic towards provider interfaces that are not part of the group and will consider as overusages measurements that exceeded the aggregated group total limit.

The discussion now turns to an algorithm used to improve system reaction time to prevent bandwidth overusages (fast react algorithm).

As known to those skilled in the art, meters that take bandwidth usage measurements on provider interfaces (in controlled network 105) and an ISP are sampling every 5 minutes. The Multi Router Traffic Grapher (MRTG) is one example of a metering tool (http://oss.oetiker.ch/mrtg/) widely used by those skilled in the art. Bandwidth rate overusages are recorded as an actual overusage when bandwidth usage values measured by the meter exceed configured bandwidth rate limits on a provider interface 106. However, if bandwidth controller 112 is capable of rerouting exceeding traffic with sufficient speed, the bandwidth usage rate measurement will not register a bandwidth rate overusage.

It is assumed that for a previous measurement interval, acceptable bandwidth rate usage values have been observed or in the event that bandwidth rate usage was excessive, then bandwidth controller 112 already took the possible actions in order to reduce it. According to this assumption, it is also assumed that the measurement by a meter is taken at a midway point during a measurement interval (i.e., after approximately 150 seconds). If the measurement by the meter is taken earlier, then the new flows increase less significantly over time. Thus, bandwidth rate usage has a smaller chance to exceed an enforced protection gap. If the measurement by a meter is taken after the midway point in the measurement interval, then bandwidth controller 112 and controlled network 105 have a greater amount of time in which to reroute traffic away from overloaded provider interfaces.

Thus, in accordance with an embodiment of this disclosure, bandwidth controller 112 is configured to recognize that (1) current bandwidth usage is measured by the meter in 5 minute intervals, and the measurement will be taken at a midway point during the interval, (2) there are a number of flows that a) cannot be rerouted due to performance deterioration, b) have been recently rerouted and it is not desirable to repeatedly reroute them since this introduces instability in the routing table, c) are scheduled for probing by network explorer 109 or are being probed but the results are not yet set, d) have been probed by network explorer 109, but the results are not sufficiently timely (outdated) to consider, or e) carry an insignificant and irrelevant bandwidth volume at the specific moment, (3) these flows are represented as a “cannot reroute” category (as seen in FIGS. 14 and 15), (4) network explorer 109 has established network prefix performance characteristics (i.e., probed) many of the active flows on the provider interface. These are depicted by the “probed in the past” category (as seen in FIGS. 14 and 15). These are the first candidate network prefixes that will be considered to be rerouted from the overloaded provider interface to candidate provider interfaces. The risk is that some of the network prefixes have changed their performance characteristics since the probes were made in the recent past, (5) network explorer 109 will finish a few more probes shortly. These flows are grouped under “probe will finish soon” category (as seen in FIGS. 14 and 15), and (6) the new flows, depicted by the white area in FIGS. 14 and 15 have just been scheduled for probing by network explorer 109. Given the lengthy probing interval these flows, while carrying a significant amount of traffic will not be probed in sufficient time to take actions during current measurements cycle. Bandwidth controller 112 can decide to increase their measuring (probing) priority. The results of measuring (probing) will be used in the future as described below.

The configuration discussed above is reflected in the flow diagram in FIG. 13 which illustrates example system process steps for controlling bandwidth on controlled network 105. In FIG. 13, the process steps are essentially divided into two sets of steps or system actions (“A” and “B”). The sets work together, but ultimately function independently. The system actions share the operation of central repository 113. In this way, delays in execution of steps from one set of steps will generally not affect the proper execution of the steps of the other set. This is described in more detail below.

Execution begins at step 1300 wherein controlled network 105 collects bandwidth usage data including total bandwidth usage for each provider interface.

Execution then moves to step 1302 wherein traffic collector 108 retrieves bandwidth usage of provider interface 106, passes this data for subsequent analysis including queuing for probing of relevant network prefixes. Only network prefixes that are not already queued are queued for probing. These probing queues are stored in central repository 113. These network prefixes will be evaluated by network explorer 109 in the queued order and the results will become available only in the future and does not influence current cycle reaction times.

As indicated above, set “B” steps are processed simultaneously with the steps under set “A.” Specifically, network explorer 109 probes queued network prefixes stored in central repository 113 and stores such probing results in central repository 113. It is important to note that network explorer 109 operates continuously throughout all bandwidth control cycles (wherein a bandwidth control cycle represents the execution steps under set “A” and “B”). That is, network explorer 109 probes queued network prefixes continuously. The results are stored in central repository 113 at step 1310. Because this step is traditionally a time consuming part of the process, the box is enlarged to represent significant time consumption as compared to the other execution step boxes. Traffic collector 108 feeds the probing queue during previous bandwidth control cycles.

Execution proceeds to step 1304 wherein bandwidth controller 112 determines if provider interface 106 exceeds bandwidth rate limit, retrieves probing results (prefixes) from central repository 113 as shown, and determines the network prefixes that can be rerouted. These network prefixes used for rerouting are stored in central repository 113. In other words, bandwidth controller 112 is given an early opportunity to recognize a potential overload. The analysis is done based on existing probe results within central repository 113 without priority scheduling. However, increased probing priorities may be sent for storage in central repository 113 as shown in FIG. 13. (As indicated above, network explorer 109 continuously probes queued network prefixes and stores such probing results in central repository 113.) At this stage, bandwidth controller 112 may not possess complete data about all relevant active flow performance characteristics, and some probe results may be outdated. However, a transitory analysis cycle may retrieve additional probe results during subsequent cycles.

Execution then proceeds to steps 1306 and 1308 wherein the route injector 111 announces rerouted network prefixes to controlled network 105 and controlled network 105 propagates and applies new routes on its network (e.g., routers, switches and other devices that form controlled network 105), thus rerouting traffic from overloaded provider interfaces 104 to provider interfaces 104 that have available bandwidth capacity. In short, controlled network 105 has the opportunity to enforce the rerouting decisions it received from route injector 111.

In this embodiment of the disclosure, network controller 100 will react with greater speed to potential overloads. Execution of the steps in set “A” (bandwidth control cycle) are not affected by delays in execution of the steps in set “B” (probing queued network prefixes). Therefore, execution bandwidth control cycle times are reduced, thereby significantly increasing the chance that a bandwidth overusage event has been addressed when a measurement by a meter is taken.

The bandwidth usage cycles repeat continuously. New probing results become available. In the event that traffic overload conditions re-appear, action will be taken again. By reacting more rapidly, the system is able to adjust to fluctuating conditions and thus bring the network towards desired state in smaller and more frequent steps.

FIGS. 14 illustrates a graph depicting categories of traffic distinguished by bandwidth controller (fast react algorithm) over a 5 minute-interval under normal circumstances. FIG. 15 illustrates a graph depicting the same categories of traffic over the five-minute interval for the fast react algorithm. When bandwidth usage for a Provider interface 106 exceeds the protection gap value, bandwidth controller 112 takes action by rerouting network prefixes. Such an event is depicted as moment 0 (zero) in time in FIGS. 14 and 15. The dotted rectangle depicts the time in which a traffic measurement is taken by a metering tool.

As shown in FIG. 14, the use of a cycle without fast react was able to react by minute 4 and the meter measurement registers a bandwidth rate overusage. However, as seen in FIG. 15, the fast react bandwidth usage cycle was carried out two rounds of rerouting actions, thus bringing the bandwidth rate usage values down by the time the meter measurement is taken.

FIG. 16 illustrates a block diagram of a general purpose computer 1600 to support the embodiments of the systems and methods disclosed in this application. In a particular configuration, computer 1600 may be a computer server as described above that is configured to enable part or all of the execution of the computer program modules (software) or application steps in the embodiments disclosed above. The computer 1600 typically includes at least one processor 1602 and system memory 1604 (volatile RAM or non-volatile ROM). The system memory 1604 may include computer readable media that is accessible to the processor 1602 and may include instructions for execution by processor 1602, an operating system 1606 and one or more application platforms 1608, such as Java and one or more modules/software components/applications 1610 or parts thereof. The computer will include one or more communication connections such as network interfaces 1612 to enable the computer to communication with other computers over a network, storage 1616 such as a hard drives, video cards 1614 and other conventional components known to those skilled in the art. This computer 1600 typically runs Unix or Microsoft as the operating system and include TCP/IP protocol stack (to communicate) for communication over the Internet as known to those skilled in the art. A display 1620 is optionally used.

Examples Disclosed Above.

IP Traffic Statistics—Example 1

Sample of “Duplicated Data” and for sFlow sampled data:

Decoding IP packet header:

Source IP address: 10.0.0.1

Destination IP address: 192.168.0.1

Protocol: TCP

Source port: 1024

Destination port: 80

packet size: 1500

IP Traffic Statistic—Example 2

Sample of NetFlow data:

Source IP address: 10.0.0.1

Destination IP address: 192.168.0.1

Protocol: TCP

Source port: 1024

Destination port: 80

packets: 1000

octets: 879000

Octets are measured in bytes and the same as the packet size from the first example. Source and destination IP addresses are extracted in order to determine if this data should be analyzed, network prefix are computed from Destination IP address and packet sizes are summed in order to collect bandwidth statistics.

Bandwidth Statistics—Examples

Measurement time: 11:00:00

Bytes: 1000000100000

Next measurement:

Measurement time: 11:01:00

Bytes: 1000050100000

(Last-Previous)*8/60=bits per second—or Bandwidth statistics.

Where 8 is 8 bits=1 byte

60=seconds between measurements.

Bandwidth statistics represented by the constantly increasing values retrieved by the stats collector 110 from the routers 104 by using Simple Network Management Protocol (SNMP).

Bandwidth Correction Table—Example

The Interface 1 bandwidth usage limit is 101 Mbps.

At 11:00 the Interface 1 bandwidth usage rate measured to 100 Mbps.

-   -   At 11:01 the network controller 100 reroutes 5 Mbps from         interface 1 to any other interface.     -   The bandwidth correction table now contains −5 for Int. 1 and +5         for other interface.     -   Next—desire to reroute 5.5 Mbps TO the Interface 1:

Last measurement—100 Mbps+correction (−5Mbps)=95 Mbps. +5.5 Mbps which it is desired to reroute to the Interface 1 =100.5 Mbps. Is 100.5 Mbps a greater than usage limit (101 Mbps)? Now, traffic can be re-routed and Bandwidth Correction Table now contain −5+5.5=+0.5 Mbps for the Interface 1.

It is to be understood that the disclosure teaches examples of the illustrative embodiments and that many variations of the invention can easily be devised by those skilled in the art after reading this disclosure and that the scope of the present invention is to be determined by the claims below. 

We claim:
 1. A computer-implemented system for managing bandwidth usage rates in a network, the system including one or more servers configured to execute computer program steps, the computer program steps comprising: forming a group of provider interfaces that may be controlled as an aggregated group of provider interfaces; calculating an aggregated group total limit and aggregated group bandwidth usage values; and determining if aggregated group usage values exceeds the group limit.
 2. The computer-implemented system of claim 1 wherein the computer program steps further comprise retrieving a plurality of provider interfaces from a configuration established by a user.
 3. The computer-implemented system of claim 2 wherein the computer program steps further comprise identifying provider interfaces of the plurality of provider interfaces for forming the group of provider interfaces.
 4. The computer-implemented system of claim 1 wherein the computer program steps further comprise calculating a protection gap based on the aggregated group total limit.
 5. The computer-implemented system of claim 1 wherein the computer program steps further comprise determining if the aggregated group usage exceeds the aggregated group protection gap and the aggregated total limit.
 6. A computer-implemented system for managing bandwidth usage rates in a network, the system including one or more servers configured to execute computer program steps, the computer program steps comprising: monitoring bandwidth usage rate at a provider interface; determining bandwidth overusages on the provider interface, whereby bandwidth overusage is determined when a bandwidth rate on the provider interface exceeds a protection gap of a bandwidth rate limit; determining a number of bandwidth overusages that exceed a number of allowable bandwidth overusages at the provider interface during an interval of time; adjusting a protection gap for the provider interface based on the number of exceeding overusages to reduce the number of bandwidth overusages to a value less than the number of allowable bandwidth overusages.
 7. The computer-implemented system of claim 6 wherein the computer program steps further comprise rerouting Internet traffic from the provider interface based on the protection gap to a second provider interface having available bandwidth capacity.
 8. The computer-implemented system of claim 6 wherein the adjusting the protection gap comprises calculating the protecting gap based on a number of excess bandwidth overusages, lower and upper protection gap limits and a maximum number of bandwidth overusages that exceed the predefined number of allowable overusages. 